帮帮忙啊！！！！！！急！急！急！

佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	发表于： 2006-08-11 09:59 \| 只看楼主短消息资料字号：小中大 1楼帮帮忙啊！！！！！！急！急！急！偶的中招了　注册表也给修改了　可用了很多方法也无法进入注册表了　总说找不到　才下载了ＱＱ　重启后就不能用了　连瑞星也不能用了　帮帮忙　看看还有什么好方法 2006-08-11 11:12:02.733000000
佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	分享到：

yanmings 锋芒艾服狮帖子:1698 注册: 2005-01-10 来自:	发表于： 2006-08-11 10:08 \| 短消息资料字号：小中大 2楼在置顶工具中下载REGFIX修复注册表，如不能运行，改后缀为.COM或.BAT
yanmings 锋芒艾服狮帖子:1698 注册: 2005-01-10 来自:

佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	发表于： 2006-08-11 11:03 \| 只看楼主短消息资料字号：小中大 3楼 Logfile of HijackThis v1.99.1 Scan saved at 10:52:44, on 2006-8-11 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Unable to get Internet Explorer version! Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\rising\rav\rav\RavTimer.exe C:\Program Files\rising\rav\rav\RavMon.exe C:\WINDOWS\System32\mssvcc.exe C:\Program Files\Tencent\TT\TTraveler.exe C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE C:\Program Files\rising\Rav\rav\CCenter.exe C:\Program Files\rising\Rav\rav\RavMonD.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Ssvchost.exe C:\Program Files\WinRAR\WinRAR.exe C:\DOCUME~1\yyy\LOCALS~1\Temp\Rar$EX00.297\HijackThis.exe F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe O2 - BHO: 超级兔子上网精灵 - {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} - C:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll O2 - BHO: Internet_Explorer_Service - {9E1E1371-9D8F-4421-81B9-F8D2E1773A59} - C:\WINDOWS\system32\HelperService.dll O3 - Toolbar: 电台(&R) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FLASHGET\fgiebar.dll O3 - Toolbar: 超级兔子上网精灵 - {43869BB3-22FD-4F15-9B46-238106BA2F4E} - C:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll O3 - Toolbar: 系统标准按钮(&E) - {6B2455FD-3669-4555-8DF8-69FD5BC846F8} - C:\WINDOWS\system32\SystemToolbar.dll O4 - HKLM\..\Run: [IMSCMig] C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload O4 - HKLM\..\Run: [AddrPlus3] C:\PROGRA~1\TENCENT\Adplus\stup.exe C:\PROGRA~1\TENCENT\Adplus\Adplus.dll Rundll32 O4 - HKLM\..\Run: [RavTimer] C:\Program Files\rising\rav\rav\RavTimer.exe O4 - HKLM\..\Run: [RavMon] C:\Program Files\rising\rav\rav\RavMon.exe O4 - HKLM\..\Run: [RfwMain] "C:\Program Files\rising\Rfw\rfwmain.exe" -Startup O4 - HKLM\..\Run: [msconfig38] mssvcc.exe O4 - HKLM\..\Run: [DisplayName] http://www.allsexwebsite.com O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\RunServices: [RavMon] C:\Program Files\rising\rav\rav\RavMon.exe /AUTO O4 - HKLM\..\RunServices: [msconfig38] mssvcc.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Windows SRS Client] winsrs.exe O4 - HKCU\..\Run: [Super Rabbit IEPro] C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD O4 - HKCU\..\Run: [IEXPLORE.EXE] IEXPLORE.EXE Http://www.520se.com O4 - Startup: 腾讯TM.lnk = C:\Program Files\Tencent\QQ\TMShell.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: IE-Bar.lnk = C:\Program Files\Common Files\IE-Bar\iebar.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1 O8 - Extra context menu item: 上传到QQ网络硬盘 - C:\Program Files\Tencent\QQ\AddToNetDisk.htm O8 - Extra context menu item: 使用网际快车下载 - C:\Program Files\FlashGet\jc_link.htm O8 - Extra context menu item: 使用网际快车下载全部链接 - C:\Program Files\FlashGet\jc_all.htm O8 - Extra context menu item: 导出到 Microsoft Office Excel(&X) - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: 添加到QQ自定义面板 - C:\Program Files\Tencent\QQ\AddPanel.htm O8 - Extra context menu item: 添加到QQ表情 - C:\Program Files\Tencent\QQ\AddEmotion.htm O8 - Extra context menu item: 用QQ彩信发送该图片 - C:\Program Files\Tencent\QQ\SendMMS.htm O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm O9 - Extra button: QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE (file missing) O9 - Extra 'Tools' menuitem: 腾讯QQ - {c95fe080-8f5d-11d2-a20b-00aa003c157b} - C:\Program Files\Tencent\QQ\QQ.EXE (file missing) O11 - Options group: [CDNCLIENT] 中文上网 O11 - Options group: [TBH] 搜搜地址栏搜索 O17 - HKLM\System\CCS\Services\Tcpip\..\{4B166A20-8E70-453C-BE49-9C70D6A9B9C3}: NameServer = 202.102.192.68 202.102.199.68 O23 - Service: Windows DDOSServer (DDOSServer) - Unknown owner - C:\WINDOWS\System32\ddos.exe O23 - Service: Rising Process Communication Center (RsCCenter) - rising - C:\Program Files\rising\Rav\rav\CCenter.exe O23 - Service: Rising Realtime Monitor Service (RsRavMon) - rising - C:\Program Files\rising\Rav\rav\RavMonD.exe O23 - Service: Svchost - Unknown owner - C:\WINDOWS\Ssvchost.exe 这是才扫描的
佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:

★蓝色羽毛★ 版主帖子:4322 注册: 2004-02-22 来自:	发表于： 2006-08-11 11:06 \| 短消息资料字号：小中大 4楼 O23 - Service: Svchost - Unknown owner - C:\WINDOWS\Ssvchost.exe O4 - HKLM\..\Run: [msconfig38] mssvcc.exe O4 - HKLM\..\Run: [DisplayName] http://www.allsexwebsite.com O4 - HKLM\..\RunServices: [msconfig38] mssvcc.exe O4 - HKCU\..\Run: [Windows SRS Client] winsrs.exe O4 - HKCU\..\Run: [IEXPLORE.EXE] IEXPLORE.EXE Http://www.520se.com
★蓝色羽毛★ 版主帖子:4322 注册: 2004-02-22 来自:

佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	发表于： 2006-08-11 11:10 \| 只看楼主短消息资料字号：小中大 5楼启动项目注册表 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ctfmon.exe><C:\WINDOWS\System32\ctfmon.exe> [Microsoft Corporation] <MsnMsgr><"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background> [Microsoft Corporation] <Windows SRS Client><winsrs.exe> [] <Super Rabbit IEPro><C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE /LOAD> [Super Rabbit Soft] <IEXPLORE.EXE><IEXPLORE.EXE Http://www.520se.com> [] [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [] <run><> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <IMSCMig><C:\PROGRA~1\COMMON~1\MICROS~1\IME\IMSC40A\IMSCMIG.EXE /Preload> [Microsoft Corporation] <AddrPlus3><C:\PROGRA~1\TENCENT\Adplus\stup.exe C:\PROGRA~1\TENCENT\Adplus\Adplus.dll Rundll32> [Tencent] <RavTimer><C:\Program Files\rising\rav\rav\RavTimer.exe> [rising] <RavMon><C:\Program Files\rising\rav\rav\RavMon.exe> [rising] <RfwMain><"C:\Program Files\rising\Rfw\rfwmain.exe" -Startup> [Beijing Rising Technology Co., Ltd.] <msconfig38><mssvcc.exe> [] <DisplayName><http://www.allsexwebsite.com> [] <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices] <RavMon><C:\Program Files\rising\rav\rav\RavMon.exe /AUTO> [rising] <msconfig38><mssvcc.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] <INET><C:\WINDOWS\System32\INETSRV\inetsync.exe> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [Microsoft Corporation] <Userinit><C:\WINDOWS\System32\Userinit.exe> [Microsoft Corporation] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><> [] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <UIHost><logonui.exe> [Microsoft Corporation] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{F084FD46-EB63-4CC0-B814-99C16EE76BD1}><C:\Program Files\Common Files\Microsoft Shared\MSINFO\InfoMz.Ime> [] <{C217767F-E340-49B8-85D3-3A72B9CD652F}><C:\Program Files\Common Files\Microsoft Shared\MSINFO\InfoMs.Ime> [] ================================== 启动文件夹 [Adobe Gamma Loader] <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\Adobe Gamma Loader.lnk><N> [IE-Bar] <C:\Documents and Settings\All Users\「开始」菜单\程序\启动\IE-Bar.lnk><N> [腾讯TM] <C:\Documents and Settings\yyy\「开始」菜单\程序\启动\腾讯TM.lnk><N> ================================== 服务 [Windows DDOSServer / DDOSServer] <C:\WINDOWS\System32\ddos.exe -NetSata><N/A> [IPSEC Client / NHLscA] <C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\WBEM\IRJIT.DLL,Export 1087><N/A> [Rising Process Communication Center / RsCCenter] <C:\Program Files\rising\Rav\rav\CCenter.exe><rising> [Rising Realtime Monitor Service / RsRavMon] <C:\Program Files\rising\Rav\rav\RavMonD.exe><rising> [Svchost / Svchost] <C:\WINDOWS\Ssvchost.exe><N/A> ================================== 浏览器加载项 [超级兔子上网精灵] {7369D35A-5B70-4A5B-B789-B25FE09B4AF3} <C:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll, Xiang Feng Technology> [Internet_Explorer_Service] {9E1E1371-9D8F-4421-81B9-F8D2E1773A59} <C:\WINDOWS\system32\HelperService.dll, N/A> [@shdoclc.dll,-866] {c95fe080-8f5d-11d2-a20b-00aa003c157a} <, N/A> [QQ] {c95fe080-8f5d-11d2-a20b-00aa003c157b} <C:\Program Files\Tencent\QQ\QQ.EXE, N/A> [电台(&R)] {8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, Microsoft Corporation> [FlashGet Bar] {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FLASHGET\fgiebar.dll, Amaze Soft> [超级兔子上网精灵] {43869BB3-22FD-4F15-9B46-238106BA2F4E} <C:\PROGRA~1\SUPERR~1\MAGICSET\haokanbar.dll, Xiang Feng Technology> [系统标准按钮(&E)] {6B2455FD-3669-4555-8DF8-69FD5BC846F8} <C:\WINDOWS\system32\SystemToolbar.dll, N/A> [Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\FLASH.OCX, Macromedia, Inc.> [上传到QQ网络硬盘] <C:\Program Files\Tencent\QQ\AddToNetDisk.htm, N/A> [使用网际快车下载] <C:\Program Files\FlashGet\jc_link.htm, N/A> [使用网际快车下载全部链接] <C:\Program Files\FlashGet\jc_all.htm, N/A> [导出到 Microsoft Office Excel(&X)] <res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A> [添加到QQ自定义面板] <C:\Program Files\Tencent\QQ\AddPanel.htm, N/A> [添加到QQ表情] <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A> [用QQ彩信发送该图片] <C:\Program Files\Tencent\QQ\SendMMS.htm, N/A> ==================================
佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:

佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	发表于： 2006-08-11 11:10 \| 只看楼主短消息资料字号：小中大 6楼 ================================== 正在运行的进程 [PID: 448][\SystemRoot\System32\smss.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [PID: 504][\??\C:\WINDOWS\system32\csrss.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 528][\??\C:\WINDOWS\system32\winlogon.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 572][C:\WINDOWS\system32\services.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 592][C:\WINDOWS\system32\lsass.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 752][C:\WINDOWS\system32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 840][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 972][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 1020][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [PID: 1304][C:\WINDOWS\system32\spoolsv.exe] <Microsoft Corporation><5.1.2600.0 (XPClient.010817-1148)> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 1512][C:\WINDOWS\Explorer.EXE] <Microsoft Corporation><6.00.2800.1106 (xpsp1.020828-1920)> [C:\Program Files\Common Files\Microsoft Shared\MSINFO\InfoMz.Ime] <N/A><N/A> [C:\Program Files\Common Files\Microsoft Shared\MSINFO\InfoMs.Ime] <N/A><N/A> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\WINDOWS\System32\RavScrCh.dll] <><16, 0, 0, 3> [C:\WINDOWS\System32\UnMail.dll] <rising><16, 0, 0, 7> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [C:\Program Files\TENCENT\Adplus\SSAddr.dll] <Tencent><3, 0, 4, 40> [C:\WINDOWS\system32\HelperService.dll] <N/A><N/A> [PID: 1956][C:\Program Files\rising\rav\rav\RavTimer.exe] <rising><16, 0, 0, 15> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\Program Files\rising\rav\rav\Language.dll] <RiSing><15, 0, 0, 17> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\Program Files\rising\rav\rav\RsCommX.dll] <rising><15, 0, 1, 13> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [PID: 1964][C:\Program Files\rising\rav\rav\RavMon.exe] <rising><16, 0, 0, 18> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\rav\rav\RavMon.dll] <Beijing Rising Tech. Co. Ltd.><16, 0, 0, 25> [C:\Program Files\rising\rav\rav\guidll.dll] <rising><16, 0, 0, 31> [C:\Program Files\rising\rav\rav\RsCommX.dll] <rising><15, 0, 1, 13> [C:\Program Files\rising\rav\rav\Language.dll] <RiSing><15, 0, 0, 17> [PID: 1980][C:\WINDOWS\System32\mssvcc.exe] <N/A><N/A> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [PID: 1988][C:\Program Files\Tencent\TT\TTraveler.exe] <腾讯公司><3.0.0.250> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\Tencent\TT\Plugins\QQFloatBar\QQFloatBar4TT2.dll] <腾讯公司><1, 1, 0, 5> [C:\Program Files\Tencent\TT\Plugins\TWeather\TWeather.dll] <><1, 0, 0, 3> [C:\Program Files\Tencent\TT\PersonalDesktop.dll] <深圳市腾讯计算机系统公司QQ工作小组><1, 0, 0, 4> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [C:\WINDOWS\System32\RavScrCh.dll] <><16, 0, 0, 3> [C:\WINDOWS\System32\UnMail.dll] <rising><16, 0, 0, 7> [C:\WINDOWS\System32\KIme.ime] <金山软件公司><1, 0, 0, 1> [C:\WINDOWS\System32\WBJJU.IME] <北京六合源软件技术有限公司><0, 1, 0, 1> [C:\WINDOWS\System32\WbCodeU.dll] <><0, 1, 0, 0> [C:\WINDOWS\System32\Macromed\Flash\FLASH.OCX] <Macromedia, Inc.><7,0,19,0> [PID: 2004][C:\WINDOWS\System32\ctfmon.exe] <Microsoft Corporation><5.1.2600.1106 (xpsp1.020828-1920)> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [PID: 2020][C:\Program Files\Super Rabbit\MagicSet\SRIECLI.EXE] <Super Rabbit Soft><7.76> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\PROGRA~1\SUPERR~1\MagicSet\shlobj71.ocx] <Sky Software (http://www.ssware.com)><7, 1, 0, 0> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [PID: 1396][C:\Program Files\rising\Rav\rav\CCenter.exe] <rising><15, 0, 1, 8> [PID: 1492][C:\Program Files\rising\Rav\rav\RavMonD.exe] <rising><16, 0, 0, 6> [C:\Program Files\rising\Rav\rav\RavMon.dll] <Beijing Rising Tech. Co. Ltd.><16, 0, 0, 25> [C:\Program Files\rising\Rav\rav\guidll.dll] <rising><16, 0, 0, 31> [C:\Program Files\rising\Rav\rav\RsCommX.dll] <rising><15, 0, 1, 13> [C:\Program Files\rising\Rav\rav\Language.dll] <RiSing><15, 0, 0, 17> [C:\Program Files\rising\Rav\rav\Engine.dll] <rising><16, 0, 0, 41> [C:\Program Files\rising\Rav\rav\LibLoad.dll] <Rising><16, 0, 0, 25> [C:\Program Files\rising\Rav\rav\StoreDll.dll] <Beijing Rising Technology Co., Ltd.><16, 0, 0, 4> [C:\Program Files\rising\Rav\rav\ScanFile.dll] <rising><16, 0, 0, 34> [C:\Program Files\rising\Rav\rav\NVFile.dll] <rising><16, 0, 0, 4> [C:\Program Files\rising\Rav\rav\PostTrt.dll] <Rising><16, 0, 0, 16> [C:\Program Files\rising\Rav\rav\PostTrtX.dll] <瑞星科技股份有限公司><16, 0, 0, 5> [C:\Program Files\rising\Rav\rav\ExtFile.dll] <RiSing><16, 0, 0, 23> [C:\Program Files\rising\Rav\rav\ExtMail.dll] <rising><16, 0, 0, 24> [C:\Program Files\rising\Rav\rav\ScanEx.dll] <rising><16, 0, 0, 30> [C:\Program Files\rising\Rav\rav\UnMacro.dll] <rising><16, 0, 0, 8> [C:\Program Files\rising\Rav\rav\UnExe.dll] <Rising><16, 0, 0, 27> [C:\Program Files\rising\Rav\rav\UnMail.dll] <rising><16, 0, 0, 7> [C:\Program Files\rising\Rav\rav\BtEngine.dll] <rising><16, 0, 0, 30> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\zip.dll] <rising><13, 0, 0, 1> [C:\Program Files\rising\Rav\rav\VirusLib.dll] <rs><16, 0, 0, 14> [PID: 1524][C:\WINDOWS\System32\svchost.exe] <Microsoft Corporation><5.1.2600.0 (xpclient.010817-1148)> [PID: 1544][C:\WINDOWS\Ssvchost.exe] <N/A><N/A> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2> [PID: 1588][C:\WINDOWS\System32\wdfmgr.exe] <Microsoft Corporation><5.2.3790.1230 built by: dnsrv(bld4act)> [PID: 1812][C:\Program Files\WinRAR\WinRAR.exe] <N/A><N/A> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [PID: 3096][C:\DOCUME~1\yyy\LOCALS~1\Temp\Rar$EX00.428\SREng2\SREng.exe] <Smallfrogs Studio><2.0.21.505> [C:\Program Files\rising\Rav\rav\ApiHook.dll] <北京瑞星><16, 0, 0, 19> [C:\Program Files\rising\Rav\rav\MemMon.dll] <北京瑞星><16, 1, 0, 0> [C:\PROGRA~1\TENCENT\Adplus\Adplus.dll] <Tencent><3, 0, 4, 40> [C:\WINDOWS\System32\olemdb32.dll] <N/A><N/A> [C:\Program Files\rising\Rav\rav\RavProxy.dll] <rising><16, 0, 0, 2>
佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:

横据古稀狮

帖子:15779
注册: 2004-04-06
来自:

发表于： 2006-08-11 11:12 | 只看楼主 短消息资料

字号：小中大 7楼

引用:

【★蓝色羽毛★的贴子】O23 - Service: Svchost - Unknown owner - C:\WINDOWS\Ssvchost.exe
O4 - HKLM\..\Run: [msconfig38] mssvcc.exe
O4 - HKLM\..\Run: [DisplayName] http://www.allsexwebsite.com

O4 - HKLM\..\RunServices: [msconfig38] mssvcc.exe

O4 - HKCU\..\Run: [Windows SRS Client] winsrs.exe
O4 - HKCU\..\Run: [IEXPLORE.EXE] IEXPLORE.EXE Http://www.520se.com
………………

偶修复这些也不行　问题是进不了注册表　偶重装的瑞星也没用了　谢谢你的帮助！

	瑞星“1+2”全新解决方案巡展在广州画上圆满句号		叶院长揭秘：瑞星如何运用AI技术革新网络安全		俄乌冲突加剧网络攻击风险白俄罗斯政府遭APT攻击		瑞星ESM防病毒系统助力矿业大学筑牢网络安全防线
	实力拉满瑞星第五十次通过VB100测评		携手老友，拥抱新精彩 —— 新论坛新活动，感谢你的陪伴		护航司法，瑞星助力山西省高院构建安全防线		人工智能在网络安全领域的风险和机遇

佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	发表于： 2006-08-11 09:59 \| 只看楼主短消息资料字号：小中大 1楼帮帮忙啊！！！！！！急！急！急！偶的中招了　注册表也给修改了　可用了很多方法也无法进入注册表了　总说找不到　才下载了ＱＱ　重启后就不能用了　连瑞星也不能用了　帮帮忙　看看还有什么好方法 2006-08-11 11:12:02.733000000
佛耳横据古稀狮帖子:15779 注册: 2004-04-06 来自:	分享到：

瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛 帮帮忙啊！！！！！！急！急！急！

帮帮忙啊！！！！！！急！急！急！

瑞星卡卡安全论坛技术交流区反病毒/反流氓软件论坛帮帮忙啊！！！！！！急！急！急！